Unknown Buddyboss-Platform vulnerabilities
3 known vulnerabilities affecting unknown/buddyboss-platform.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2LOW1
Vulnerabilities
Page 1 of 1
CVE-2024-12767LOWCVSS 3.5fixed in 2.7.602025-05-15
CVE-2024-12767 [LOW] CWE-639 CVE-2024-12767: The buddyboss-platform WordPress plugin before 2.7.60 lacks proper access controls and allows a logg
The buddyboss-platform WordPress plugin before 2.7.60 lacks proper access controls and allows a logged-in user to view comments on private posts
cvelistv5nvd
CVE-2024-4886MEDIUMCVSS 4.3fixed in 2.6.02024-06-05
CVE-2024-4886 [MEDIUM] CWE-639 CVE-2024-4886: The contains an IDOR vulnerability that allows a user to comment on a private post by manipulating
The contains an IDOR vulnerability that allows a user to comment on a private post by manipulating the ID included in the request
cvelistv5nvd
CVE-2024-4750MEDIUMCVSS 5.3fixed in 2.6.02024-06-04
CVE-2024-4750 [MEDIUM] CWE-639 CVE-2024-4750: The buddyboss-platform WordPress plugin before 2.6.0 contains an IDOR vulnerability that allows a us
The buddyboss-platform WordPress plugin before 2.6.0 contains an IDOR vulnerability that allows a user to like a private post by manipulating the ID included in the request
cvelistv5nvd